Speaker
Description
Information Technology (IT), Operational technology (OT) and Sensitive Information assets all have critical roles in the safe and secure transportation of nuclear materials. IT systems drive logistics and communications; OT ensures the safety and reliability of transport vehicles and monitoring systems and information assets such as schedules, routes and protective measures represent prime targets for adversaries. A compromise in any of these domains could trigger operational failure, reputational harm and the loss of public trust.
This paper highlights the importance of leadership in embedding cybersecurity as a core component of safe and secure nuclear transport operations through the whole of organisation approach. Building on the 2024 Green rating of NTS from the ONR’s thematic inspection of Governance, Leadership, Culture and Risk Management, it describes how board understanding and executive team commitment have been developed and cascaded through the business and how cybersecurity and information governance risk exposure is communicated to decision makers through clear governance and concise management information. The importance and appointment of key cyber security leadership roles such as Senior Information Risk Owner (SIRO), Chief Information Security Officer (CISO) and a Non-Executive Director (NED) responsible for Information Security are also highlighted and how these have positively shaped cybersecurity culture, clarified risk ownership and ensured cyber security is a business priority from the board room to engine room.
